CVE-2014-3341: Infoleak
First published: Tue Aug 19 2014(Updated: )
The SNMP module in Cisco NX-OS 7.0(3)N1(1) and earlier on Nexus 5000 and 6000 devices provides different error messages for invalid requests depending on whether the VLAN ID exists, which allows remote attackers to enumerate VLANs via a series of requests, aka Bug ID CSCup85616.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Nx-os | <=7.0\(3\)n1\(1\) | |
| Cisco Nx-os | =5.0\(2\)n1\(1\) | |
| Cisco Nx-os | =5.0\(2\)n2\(1\) | |
| Cisco Nx-os | =5.0\(2\)n2\(1a\) | |
| Cisco Nx-os | =5.0\(3\)n1\(1c\) | |
| Cisco Nx-os | =5.0\(3\)n2\(1\) | |
| Cisco Nx-os | =5.0\(3\)n2\(2\) | |
| Cisco Nx-os | =5.0\(3\)n2\(2a\) | |
| Cisco Nx-os | =5.0\(3\)n2\(2b\) | |
| Cisco Nx-os | =5.1\(3\)n1\(1\) | |
| Cisco Nx-os | =5.1\(3\)n1\(1a\) | |
| Cisco Nx-os | =5.1\(3\)n2\(1\) | |
| Cisco Nx-os | =5.1\(3\)n2\(1a\) | |
| Cisco Nx-os | =5.1\(3\)n2\(1b\) | |
| Cisco Nx-os | =5.1\(3\)n2\(1c\) | |
| Cisco Nx-os | =5.2\(1\)n1\(1\) | |
| Cisco Nx-os | =5.2\(1\)n1\(1a\) | |
| Cisco Nx-os | =5.2\(1\)n1\(1b\) | |
| Cisco Nx-os | =5.2\(1\)n1\(2\) | |
| Cisco Nx-os | =5.2\(1\)n1\(2a\) | |
| Cisco Nx-os | =5.2\(1\)n1\(3\) | |
| Cisco Nx-os | =5.2\(1\)n1\(4\) | |
| Cisco Nx-os | =5.2\(1\)n1\(5\) | |
| Cisco Nx-os | =5.2\(1\)n1\(6\) | |
| Cisco Nx-os | =5.2\(1\)n1\(7\) | |
| Cisco Nx-os | =5.2\(1\)n1\(8\) | |
| Cisco Nx-os | =5.2\(1\)n1\(8a\) | |
| Cisco Nx-os | =6.0\(2\)n1\(2\) | |
| Cisco Nx-os | =6.0\(2\)n1\(2a\) | |
| Cisco Nx-os | =6.0\(2\)n2\(1\) | |
| Cisco Nx-os | =6.0\(2\)n2\(1b\) | |
| Cisco Nx-os | =6.0\(2\)n2\(2\) | |
| Cisco Nx-os | =6.0\(2\)n2\(3\) | |
| Cisco Nx-os | =6.0\(2\)n2\(4\) | |
| Cisco Nx-os | =6.0\(2\)n2\(5\) | |
| Cisco Nx-os | =7.0\(0\)n1\(1\) | |
| Cisco Nx-os | =7.0\(1\)n1\(1\) | |
| Cisco Nx-os | =7.0\(2\)n1\(1\) | |
| Cisco Nexus 5000 | ||
| Cisco Nexus 5010 | ||
| Cisco Nexus 5010p Switch | ||
| Cisco Nexus 5020 | ||
| Cisco Nexus 5020p Switch | ||
| Cisco Nexus 5548p | ||
| Cisco Nexus 5548up | ||
| Cisco Nexus 5596t | ||
| Cisco Nexus 5596up | ||
| Cisco Nexus 56128p | ||
| Cisco Nexus 5672up | ||
| Cisco Nexus 6001 | ||
| Cisco Nexus 6004 | ||
| Cisco Nexus 6004x |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/weakness
- agent/tags
- agent/event
- agent/references
- agent/author
- agent/severity
- agent/type
- agent/description
- agent/softwarecombine
- agent/last-modified-date
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/cisco
- canonical/cisco nx-os
- version/cisco nx-os/7.0\(3\)n1\(1\)
- version/cisco nx-os/5.0\(2\)n1\(1\)
- version/cisco nx-os/5.0\(2\)n2\(1\)
- version/cisco nx-os/5.0\(2\)n2\(1a\)
- version/cisco nx-os/5.0\(3\)n1\(1c\)
- version/cisco nx-os/5.0\(3\)n2\(1\)
- version/cisco nx-os/5.0\(3\)n2\(2\)
- version/cisco nx-os/5.0\(3\)n2\(2a\)
- version/cisco nx-os/5.0\(3\)n2\(2b\)
- version/cisco nx-os/5.1\(3\)n1\(1\)
- version/cisco nx-os/5.1\(3\)n1\(1a\)
- version/cisco nx-os/5.1\(3\)n2\(1\)
- version/cisco nx-os/5.1\(3\)n2\(1a\)
- version/cisco nx-os/5.1\(3\)n2\(1b\)
- version/cisco nx-os/5.1\(3\)n2\(1c\)
- version/cisco nx-os/5.2\(1\)n1\(1\)
- version/cisco nx-os/5.2\(1\)n1\(1a\)
- version/cisco nx-os/5.2\(1\)n1\(1b\)
- version/cisco nx-os/5.2\(1\)n1\(2\)
- version/cisco nx-os/5.2\(1\)n1\(2a\)
- version/cisco nx-os/5.2\(1\)n1\(3\)
- version/cisco nx-os/5.2\(1\)n1\(4\)
- version/cisco nx-os/5.2\(1\)n1\(5\)
- version/cisco nx-os/5.2\(1\)n1\(6\)
- version/cisco nx-os/5.2\(1\)n1\(7\)
- version/cisco nx-os/5.2\(1\)n1\(8\)
- version/cisco nx-os/5.2\(1\)n1\(8a\)
- version/cisco nx-os/6.0\(2\)n1\(2\)
- version/cisco nx-os/6.0\(2\)n1\(2a\)
- version/cisco nx-os/6.0\(2\)n2\(1\)
- version/cisco nx-os/6.0\(2\)n2\(1b\)
- version/cisco nx-os/6.0\(2\)n2\(2\)
- version/cisco nx-os/6.0\(2\)n2\(3\)
- version/cisco nx-os/6.0\(2\)n2\(4\)
- version/cisco nx-os/6.0\(2\)n2\(5\)
- version/cisco nx-os/7.0\(0\)n1\(1\)
- version/cisco nx-os/7.0\(1\)n1\(1\)
- version/cisco nx-os/7.0\(2\)n1\(1\)
- canonical/cisco nexus 5000
- canonical/cisco nexus 5010
- canonical/cisco nexus 5010p switch
- canonical/cisco nexus 5020
- canonical/cisco nexus 5020p switch
- canonical/cisco nexus 5548p
- canonical/cisco nexus 5548up
- canonical/cisco nexus 5596t
- canonical/cisco nexus 5596up
- canonical/cisco nexus 56128p
- canonical/cisco nexus 5672up
- canonical/cisco nexus 6001
- canonical/cisco nexus 6004
- canonical/cisco nexus 6004x